KIP-458 — Connector Client Config Override Policy
Accepted Kafka 2.3 ConnectSecurity
Adds a connector.client.config.override.policy configuration to the Connect worker to control which producer/consumer config properties connectors are allowed to override from their task configs. Without this, any connector (including untrusted ones deployed to a shared cluster) could override sensitive worker-level client configs like security credentials or bootstrap servers.
Details
| Author | Magesh kumar Nandakumar |
| Status | Accepted |
| Kafka Version | 2.3 |
| JIRA | KAFKA-8265 |
| Wiki | View on Apache Wiki |
| Created | 2019-04-19 |
| Last Modified | 2019-05-17 |
Explore how this KIP affects the Kafka protocol in the Protocol Explorer, or see the full KIP database.